CVE-2008-2272

Name of the Vulnerable Software and Affected Versions: Aruba Mobility Controller versions 2.4.8.x-FIPS through 2.4.8.x-FIPS Aruba Mobility Controller versions 2.5.5.x through 2.5.6.x Aruba Mobility Controller versions 3.1.1.x through 3.1.1.x Aruba Mobility Controller versions 3.2.0.x through 3.2.0.x Aruba Mobility Controller versions 3.3.1.x through 3.3.1.x

Description: The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, which can lead to cross-site scripting (XSS) attacks.

Recommendations: For Aruba Mobility Controller version 2.4.8.x-FIPS, update to a version that fixes the XSS vulnerabilities. For Aruba Mobility Controller versions 2.5.5.x through 2.5.6.x, update to a version that fixes the XSS vulnerabilities. For Aruba Mobility Controller version 3.1.1.x, update to a version that fixes the XSS vulnerabilities. For Aruba Mobility Controller version 3.2.0.x, update to a version that fixes the XSS vulnerabilities. For Aruba Mobility Controller version 3.3.1.x, update to a version that fixes the XSS vulnerabilities.